Merge branch 'user-permission-docs' into 'master'

Documentation and FF cleanup for User permission export [RUN ALL RSPEC] [RUN AS-IF-FOSS] See merge request gitlab-org/gitlab!53789

Merge branch 'user-permission-docs' into 'master'
Documentation and FF cleanup for User permission export [RUN ALL RSPEC] [RUN AS-IF-FOSS] See merge request gitlab-org/gitlab!53789
463b4e1e · James Fargher · 4438de75 · 5c2bd8cc · 463b4e1e · 463b4e1e
Commit 463b4e1e authored Feb 18, 2021 by James Fargher
5 changed files
--- a/doc/user/admin_area/index.md
+++ b/doc/user/admin_area/index.md
@@ -157,6 +157,22 @@ All impersonation activities are [captured with audit events](../../administrati

 ![user impersonation button](img/impersonate_user_button_v13_8.png)

+#### User Permission Export **(PREMIUM SELF)**
+
+> - [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/1772) in GitLab 13.8.
+> - [Feature flag removed](https://gitlab.com/gitlab-org/gitlab/-/issues/292436) in GitLab 13.9.
+
+An administrator can export user permissions for all users in the GitLab instance from the Admin Area's Users page.
+The export lists direct membership the users have in groups and projects.
+
+The following data is included in the export:
+
+- Username
+- Email
+- Type
+- Path
+- Access level ([Project](../permissions.md#project-members-permissions) and [Group](../permissions.md#group-members-permissions))
+
 #### Users statistics

 The **Users statistics** page provides an overview of user accounts by role. These statistics are

--- a/ee/app/policies/ee/global_policy.rb
+++ b/ee/app/policies/ee/global_policy.rb
@@ -18,7 +18,7 @@ module EE
      end

      condition(:export_user_permissions_available) do
-        ::License.feature_available?(:export_user_permissions) && ::Feature.enabled?(:export_user_permissions_feature_flag)
+        ::License.feature_available?(:export_user_permissions)
      end

      rule { ~anonymous & operations_dashboard_available }.enable :read_operations_dashboard

--- a/ee/changelogs/unreleased/user-permission-docs.yml
+++ b/ee/changelogs/unreleased/user-permission-docs.yml
+---
+title: User permission export (feature flag removed)
+merge_request: 53789
+author:
+type: added
--- a/ee/config/feature_flags/development/export_user_permissions_feature_flag.yml
+++ b/ee/config/feature_flags/development/export_user_permissions_feature_flag.yml
---
-name: export_user_permissions_feature_flag
-introduced_by_url: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/49399
-rollout_issue_url: https://gitlab.com/gitlab-org/gitlab/-/issues/292436
-milestone: '13.7'
-type: development
-group: group::compliance
-default_enabled: false
--- a/ee/spec/policies/global_policy_spec.rb
+++ b/ee/spec/policies/global_policy_spec.rb
@@ -249,15 +249,11 @@ RSpec.describe GlobalPolicy do
    let_it_be(:admin) { build_stubbed(:admin) }
    let_it_be(:guest) { build_stubbed(:user) }

-    where(:role, :flag_enabled, :licensed, :allowed) do
-      :admin      | true  | true  | true
-      :admin      | true  | false | false
-      :admin      | false | true  | false
-      :admin      | false | false | false
-      :guest      | true  | true  | false
-      :guest      | true  | false | false
-      :guest      | false | true  | false
-      :guest      | false | false | false
+    where(:role, :licensed, :allowed) do
+      :admin      | true  | true
+      :admin      | false | false
+      :guest      | true  | false
+      :guest      | false | false
    end

    with_them do
@@ -265,7 +261,6 @@ RSpec.describe GlobalPolicy do

      before do
        stub_licensed_features(export_user_permissions: licensed)
-        stub_feature_flags(export_user_permissions_feature_flag: flag_enabled)
      end

      it { is_expected.to(allowed ? be_allowed(policy) : be_disallowed(policy)) }